InContatto Srl, with registered office in Viale dell’Oceano Atlantico 18 – 00144 Rome, VAT no. 12443641001, data controller, (referred to as the ‘Data Controller’ or ‘Company’), as provided for by the regulations in force (art. 13 General Data Protection Regulation, hereinafter also RGPD), provides users visiting the website www.incontatto.it (hereinafter also referred to as the ‘website’) with information regarding the processing of the data acquired.
WHO IS THE DATA CONTROLLER AND HOW TO CONTACT IT?
The Data Controller is InContatto Srl, with registered office in Viale dell’Oceano Atlantico 18 – 00144 Rome, P. Iva 12443641001. The Company can be contacted through the email address info@incontatto.it.
WHAT DATA IS PROCESSED?
The data processed are navigation data and data provided spontaneously by the user.
Data provided directly by the user
This category includes all personal data provided by the user in an optional manner (for example, when requesting information by telephoning the numbers indicated on the website or writing to the e-mail addresses given on the site). In the event that the user decides to contact the Data Controller through the appropriate forms on the site, he/she can find out in detail about the processing of the data requested by accessing the specific information on the pages of interest.
Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment.
WHAT ARE THE PURPOSES AND LEGAL BASES OF THE PROCESSING?
Data provided directly by the user: purposes and legal bases
The personal data provided by the user in an optional manner by contacting the data controller are used only to process any requests made.
The legal bases for the processing of such data are therefore: the execution of pre-contractual measures.
The user may provide his or her data through the forms on the site, in the areas dedicated to certain services, where specific information is provided, which the user must read before providing the data, detailing all the information on the processing of the same, including the purposes and legal bases.
Navigation data: purposes and legal bases
Browsing data are used in order to obtain statistical information on the use of the website, for website security purposes and to check its correct functioning, and could be used to ascertain liability in the event of any computer offences to the detriment of the website.
The legal basis for the processing of such data is legitimate interest and, in the case of requests by the Authorities, legal obligation.
For the use of cookies or pixels for specific purposes and their legal basis, please refer to the cookie policy that can be consulted from the footer of the website.
Cookies
With regard to cookies and similar tools used by the site, please refer to the cookie policy.
WHO MAY KNOW THE DATA?
The data may also be disclosed to the IT companies that the data controller uses for the hosting service and for the assistance and maintenance services of the systems used, and to consultants for litigation management and legal assistance in the event of any disputes requiring their involvement. The data may also be disclosed to the competent authorities in the event of specific requests that the data controller is required by law to comply with.
It should be noted that some of the persons indicated operate as data processors and that communication to those who operate as autonomous data controllers is made because it is prescribed by legal obligations or necessary to fulfil the obligations deriving from the contractual relationship or the legitimate interest of the data controller consisting in maintaining the security of the information systems and in carrying out defence activities through legal advisors.
The data subject may request from the data controller the list of external entities that carry out their activities as data processors.
Communication is in any case limited to the categories of data whose transmission is necessary for the performance of the activities and purposes pursued.
HOW IS THE DATA MANAGED?
The data collected are processed using computerised tools and only residually on paper.
For data processing related to the services of the website, the Data Controller uses servers located within European territory and computer systems located at the Data Controller’s head office. Adequate security measures are taken to prevent data loss, illicit or incorrect use and unauthorised access.
The use of some of the services offered by the data controller, which the user can sign up for through a specific form on the site (as in the case of the newsletter), entails a transfer of data abroad; all the specifications are set out in the specific information notice dedicated to the service requested. It should be noted in advance, however, that the data controller will first assess whether the supplier it intends to use offers the necessary guarantees required for the transfer of data abroad.
The data provided directly by the data subject are stored for the time strictly necessary to process the requests and then deleted, without prejudice to defensive needs (which may require further storage).
The navigation data of users accessing the site are acquired and processed directly by the hosting provider without the Company having access to them.
With regard to data acquired through Google Analytics and other services that use cookies and similar tools, please refer to the cookie policy.
PROVISION OF DATA
With the exception of the navigation data required for computer and telematic protocols, the provision of data by users through the various methods made available is free and optional. However, failure to provide such data will result in the impossibility of being able to respond to requests made and use the services of interest.
WHAT ARE THE RIGHTS OF THE INTERESTED PARTY?
The law recognises the data subject’s right to request from the data controller access to and rectification or erasure of the personal data concerning him or her or to object to their processing, as well as the right to data portability.
The data subject may assert his or her rights at any time, without formalities, by contacting the data controller at the email address privacy@incontatto.it.
The rights recognised by current legislation on the protection of personal data are detailed below.
The data subject is also informed that, should he or she consider that the processing of his or her personal data is in breach of the provisions of the GDPR, he or she has the right to lodge a complaint with the Garante, as provided for in Article 77 of the Regulation itself, or to take legal action (Article 79 of the Regulation).
FURTHER INFORMATION
With regard to cookies and similar tools used by the site, please refer to the cookie policy.